"Authentication failure" on Ubuntu 18.04...

Robert Heller heller at deepsoft.com
Wed Apr 3 22:44:10 UTC 2019 

At Sat, 30 Mar 2019 16:44:31 -0400 (EDT) Robert Heller <heller at deepsoft.com> wrote:

> 
> I have a server running CentOS 6 on the bare metal, running the stock CentOS 6
> OpenLDAP packages (openldap-2.4.40-16.el6.x86_64,
> openldap-clients-2.4.40-16.el6.x86_64, openldap-2.4.40-16.el6.i686,
> openldap-servers-2.4.40-16.el6.x86_64) [yes I know these are old, but they
> *work* -- "If it ain't broke, don't fix it."]. There are two VMs running on
> this server, one running Ubuntu 14.04 and the other Ubuntu 18.04. (These two
> VMs are/will be servers for DRBL.) The Ubuntu 14.04 VM (and all of its
> diskless clients) are perfectly happy to talk to the OpenLDAP server (slapd)
> running on the CentOS 6 machine. The Ubuntu 18.04 VM is not. ldapsearch works
> everywhere though, so it is NOT the server or the core ldap libraries on any
> of the machines (partitularly the Ubuntu 18.04 VM). I can only assume that
> there is something fishy with nslcd or the pam/ldap libraries or config on the
> Ubuntu 18.04 VM. I have checked everything, but I am coming up empty.  I am 
> thinking there might be some "trick" to getting LDAP Authentication to work 
> under Ubuntu 18.04 that I am missing.
> 


I have a question about libpam-ldap vs libpam-ldapd.

Both Ubuntu 18.04 and Ubuntu 14.04 have *both* packages:

ub140464.wendellfreelibrary.org% dpkg-query -l libpam-ldap\*
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name             Version       Architecture  Description
+++-================-=============-=============-=====================================
un  libpam-ldap      <none>        <none>        (no description available)
ii  libpam-ldapd:amd 0.8.13-3ubunt amd64         PAM module for using LDAP as an authe

ub180464% dpkg-query -l libpam-ldap\*
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-files/Unpacked/halF-conf/Half-inst/trig-aWait/Trig-pend
|/ Err?=(none)/Reinst-required (Status,Err: uppercase=bad)
||/ Name           Version      Architecture Description
+++-==============-============-============-=================================
ii  libpam-ldap:am 186-4ubuntu1 amd64        Pluggable Authentication Module f
un  libpam-ldapd   <none>       <none>       (no description available)

Note that ub180464 has  libpam-ldap installed (and LDAP Authentification does 
*not* work) and ub140464 has libpam-ldapd installed (and LDAP Authentification 
*does* work).

What is the difference between these two packages?  Would *replacing 
libpam-ldap with libpam-ldapd on ub180464 solve my problem?

-- 
Robert Heller             -- 978-544-6933
Deepwoods Software        -- Custom Software Services
http://www.deepsoft.com/  -- Linux Administration Services
heller at deepsoft.com       -- Webhosting Services

More information about the ubuntu-users mailing list